CVE-2004-1552 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in aspWebCalendar allows remote attackers to execute arbitrary SQL statements via (1) the username field on the login page or (2) the eventid parameter to calendar.asp.
Reference
http://marc.info/?l=bugtraq&m=109604910025090&w=2 http://secunia.com/advisories/12651 http://secunia.com/advisories/24622 http://www.securityfocus.com/bid/11246 http://www.securityfocus.com/bid/23098 http://www.vupen.com/english/advisories/2007/1093 https://exchange.xforce.ibmcloud.com/vulnerabilities/17506 https://exchange.xforce.ibmcloud.com/vulnerabilities/33157 https://www.exploit-db.com/exploits/3546
Share on: